3Com to Buy Security Flaws?

Zonoprh writes "CNET reports that 3Com's TippingPoint division is starting a pay-for-vulnerability program called the Zero Day Initiative. It seems 3Com plans to use the vulnerabilities they purchase to fuel signatures in their protection technologies, in addition to sharing the same data with other security vendors. From the article, "Money has increasingly become an incentive for hackers. Program's such as TippingPoint's offer a legitimate way for them to get paid for their bug hunting. There is also an underground market for vulnerabilities. Cybercriminals pay top dollar for previously undisclosed flaws that they can then exploit to break into computer systems, experts have said.""

Wow

[truckaxle]

I knew 3COM was big, but big enough to buy Microsoft? Wow!

Obligatory comment

[jurt1235]

If Microsoft would do this, they would go broke (-:

Re:Obligatory comment

[James McGuigan]

1. Deleberatly create security flaw in Windows
2. Notify 3com of security flaw
3. Wait 5 working days
4. Profit

Missing step found!

[SkjeggApe]

Step 1: Create popular, mission critical software that every business will want to install
Step 2: Insert sneaky vulnerabilities
Step 3: Sell bugs to 3COM
Step 4: PROFIT!!!!

Just had an idea...

[OhHellWithIt]

Maybe I could patent a vulnerability, then sell the patent to SCO.